Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/qsC79c7XMS5dXmedek5sAYzW7hU.roa
File: qsC79c7XMS5dXmedek5sAYzW7hU.roa (raw, json)
Hash identifier: 9DSZmd2ku/q4VvJO6yDsUo2WdR4eXXuL7YsM360rILk=
Subject key identifier: AA:C0:BB:F5:CE:D7:31:2E:5D:5E:67:9D:7A:4E:6C:01:8C:D6:EE:15
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 012A
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/qsC79c7XMS5dXmedek5sAYzW7hU.roa
Signing time: Mon 21 Dec 2020 09:58:20 +0000
ROA not before: Mon 21 Dec 2020 09:58:20 +0000
ROA not after: Tue 05 Oct 2021 04:04:36 +0000
asID: 60614
IP address blocks: 2406:8dc0:2200::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 298 (0x12a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Dec 21 09:58:20 2020 GMT
Not After : Oct 5 04:04:36 2021 GMT
Subject: CN=AAC0BBF5CED7312E5D5E679D7A4E6C018CD6EE15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1f:cd:b4:2d:ed:3c:57:9c:63:af:ef:cb:c2:
e7:c7:a1:44:b2:b5:a1:c9:5c:a8:be:09:c2:2c:b8:
eb:d3:46:c3:66:c8:36:fc:c4:43:6d:80:ee:9e:a5:
6e:65:9f:23:de:6b:54:4d:af:29:22:dc:7e:d0:ca:
24:11:f0:5a:ec:86:7d:8d:0c:7e:55:a9:4a:41:3f:
71:6d:45:ed:4b:46:62:bd:ae:59:e3:bd:ee:91:ce:
b5:07:1a:23:86:13:19:35:9b:ac:ea:b1:3f:75:52:
15:ee:f0:9e:cb:52:80:75:c8:31:92:52:df:e4:7d:
3e:ec:19:d2:11:9e:8e:bb:03:a2:e3:29:09:30:f7:
ff:df:0e:7c:79:d3:76:a5:c1:d7:e9:58:0f:65:5b:
ba:c2:db:9e:41:68:7a:62:f5:a9:de:95:45:2c:01:
ef:36:4e:1b:be:c7:e8:c6:84:53:79:5e:e5:0e:ce:
5b:72:2b:67:09:3c:70:7f:40:c5:17:02:11:a4:a6:
03:cc:e9:86:32:03:e5:fc:0b:94:76:4f:f5:77:73:
eb:d1:03:8e:d4:3f:0a:29:20:a5:21:94:ea:68:4f:
56:6d:48:ac:8e:ed:03:ce:13:72:c7:7b:e4:53:e4:
73:20:00:43:db:69:ec:ea:32:4d:f2:48:d4:8a:0a:
2b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C0:BB:F5:CE:D7:31:2E:5D:5E:67:9D:7A:4E:6C:01:8C:D6:EE:15
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/qsC79c7XMS5dXmedek5sAYzW7hU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:8dc0:2200::/40
Signature Algorithm: sha256WithRSAEncryption
d4:2d:90:a2:7c:d2:ce:0c:8a:dc:23:cd:95:f6:16:44:ff:9b:
e7:96:d0:dd:ac:c0:1b:9a:11:24:42:b2:b1:0c:42:8e:76:0f:
ca:8b:bc:b4:7b:55:0d:80:a9:03:d3:23:fc:e6:36:83:c4:d9:
4c:34:90:81:03:eb:71:73:91:a6:c0:2b:29:33:a0:b4:d7:7e:
8f:0c:ca:98:1e:6f:24:54:b7:6c:fa:a8:21:c6:93:0e:56:35:
11:b0:2b:76:d5:a6:79:50:e6:9f:d8:6f:00:59:4d:15:3a:34:
13:63:e1:d6:ff:a4:70:ad:e4:93:22:b3:2d:b3:5b:c6:0c:9f:
20:9b:0c:50:19:ed:d4:99:63:62:7d:f0:28:f5:ac:d4:d5:df:
45:37:d7:98:5a:73:4f:f1:4f:b9:f2:3c:dd:32:5b:e9:c7:22:
24:83:62:6d:27:6d:f7:96:1f:0c:cb:26:99:a6:30:78:d6:1c:
0c:a1:0d:24:f6:68:56:79:22:c6:17:50:57:2f:36:eb:c1:17:
80:00:0a:5f:bf:c7:a5:07:a6:24:cc:55:f4:26:08:16:6d:71:
6c:3e:5f:f7:c2:9d:d1:8a:64:0a:ac:47:06:5a:b4:79:cf:c4:
63:fb:d9:c0:5f:92:aa:9a:98:f0:78:e5:21:0b:d1:b9:96:8e:
25:33:55:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org